The BlackCat Ransomware, which was first seen in November 2021, has since emerged as one of the most active ransomware groups.
The group look for active vulnerabilities within organisations and pay in particular favour to the unpatched Microsoft exchange. The group gained access through this vulnerability and applied Rust-based Ransomware.
According to the Cyber Security Analyst ANOZR WAY, the BlackCat group is the 3rd most active ransom group behind Lockbit 2.0 & Conti. They were recently targeting the University of Pisa. They held the University to ransom for an alleged $4.5 million.
Ensuring a regular patching schedule is in place to apply any security update is the best option to defend against this attack style. It is also an excellent notion to ensure you have a good backup stance which is regularly checked and validated.
Other things that can be put in place to secure your organisation against ransomware are to ensure the use of MFA(Multifactor authentication) and the implementation of good endpoint protection. Facilities that offer sandboxing technology can assess files sent in through email and ascertain if they have malicious intent.